This dumb password rule is from Domainname.shop.

domainname.shop operates under several domains, domene.shop (Norway), domän.shop (Sweeden), domæne.shop (Denmark).
The following characters are allowed: A-Z, a-z, 0-9 and + - * / ! ? . , : ; = # @ $ % & ( ) < >, password length 10-79 chars

https://dumbpasswordrules.com/sites/domainname-shop/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

It's not often you see a CVE perfect 10.

Anyone with a #Ubiquiti #Unifi network needs to update their Network controller immediately.

#SysAdmin #HomeLab #MastoAdmin #security #cyberSecurity

https://community.ui.com/releases/Security-Advisory-Bulletin-062-062/c29719c0-405e-4d4a-8f26-e343e99f931b

This dumb password rule is from HSA Bank.

- Must be minimum 12 characters
- Must not be one of user's past 5 passwords
- Must contain uppercase and lowercase letters
- Must contain a number
- Must not be the same as user's account number or login/username

But also...
- Cannot be longer than 20 characters

https://dumbpasswordrules.com/sites/hsa-bank/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from Trade Me.

Won't allow spaces or single quotes. Maybe other characters as well -
they do not say up front - but the password they accepted contained lots
of other special characters.

https://dumbpasswordrules.com/sites/trade-me/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from IHG.

4, yes 4, digits only.

https://dumbpasswordrules.com/sites/ihg/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

Presenting SUDO for DOS!

An implementation of sudo for DOS, to run the given command with full privileges. It can be used to edit important system files, run disk partitioning tools, and so on!

https://codeberg.org/sjmulder/sudo.com

#RetroProgramming #CyberSecurity #DOS

Alt...

Screenshot DOSBox against a Windows 11 wallpaper, showing "sudo dir"

This dumb password rule is from Munich Foerdermittel Portal.

You register on their funding portal and receive an email with an activation link to set a password.
The email further informs you about their password policy:
- At least 8, but no more than 20 characters
- At least one lowercase and uppercase letter
- At least two digits (1,2,3,4,5,6,7,8,9,0) or...

https://dumbpasswordrules.com/sites/munich-foerdermittel-portal/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from SunTrust.

At least there are a variety of special characters to choose from.

https://dumbpasswordrules.com/sites/suntrust/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

"The Ensh*ttificator"

This video is truly a masterpiece. Definitely worth your time; only 4 minutes long and perfect to be shared with friends and family.

Video: https://vimeo.com/1168468796

"Digital products and services keep getting worse. In the new report Breaking Free: Pathways to a fair technological future, the Norwegian Consumer Council has delved into enshittification and how to resist it. The report shows how this phenomenon affects both consumers and society at large, but that it is possible to turn the tide."

The report: https://www.forbrukerradet.no/breakingfree

#enshittification #dataprotection #cybersecurity #technology #EU #norway #privacy #google #Microsoft #apple #windows #Android #ios #artificialintelligence @privacy @techlore @privacyguides

I've just seen on someone's internal bio: "I have a master's degree in cybersecurity and am actively working to transition into the technology space."

Say what? How could someone have a master's in #cybersecurity but not already be "in the technology space."? I never use the word cyber unironically, but for those who do use it unironically, isn't it largely synonymous with technology?
🤦‍♂️

This dumb password rule is from Progressive Home by Homesite.

Password must be a minimum of 8 characters.

Passwords must have one lowercase character.

Passwords must have one uppercase character.

Passwords must have one number.

Passwords must have one special character in the following list: `!'#$ ~`!@#$%^&*()-_+=?<,>.{}[]|;:`

Furthermore, when resetti...

https://dumbpasswordrules.com/sites/progressive-home-by-homesite/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from South Western Railway.

Certain special characters disallowed, but notably the phrase " or " is disallowed also. They're probably papering over SQL injection vulnerabilities 🤦

https://dumbpasswordrules.com/sites/south-western-railway/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from MySwissLife.

User ID *has to* be 8 characters exactly, password *has to be* 8 characters and numbers only.

https://dumbpasswordrules.com/sites/myswisslife/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from Easyjet.

No more than 20 characters, use any symbols you like... Oh except #, &, +, or space of course.

https://dumbpasswordrules.com/sites/easyjet/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from Williams-Sonoma.

25 maximum characters and disallowing some specials.

https://dumbpasswordrules.com/sites/williams-sonoma/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from United Parcel Service of America.

Your password must:
- Be between 7 and 26 characters long
- Contain at least 1 lowercase character
- Contain at least 1 uppercase character
- Contain at least 1 number character
- Contain one special character (!@#$%*)
- NOT contain first or last name
- NOT contain UPS user ID
- NOT contain email...

https://dumbpasswordrules.com/sites/united-parcel-service-of-america/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

UK MPs have passed an amendment giving the government powers to restrict access to VPNs.

Imposing digital ID checks will turn people away from using a tool that keeps them safe and secure online.

Instead it'll fuel the surveillance-based economy that causes harms.

Sign our petition to protect VPN use in the UK ⬇️

https://action.openrightsgroup.org/tell-government-protect-vpn-use-uk

#vpn #privacy #cybersecurity #onlinesafety #ukpolitics #ukpol

"There is little evidence that young people are using VPNs to bypass digital ID checks imposed by the [UK] Online Safety Act."

Age gating them "will have little impact on children's online safety but will deter adults from using them or force people to hand over personal documents or biometric data."

🗣️ @JamesBaker for ORG.

https://www.independent.co.uk/extras/indybest/gadgets-tech/vpn-ban-uk-b2934934.html

#vpn #privacy #cybersecurity #onlinesafety #ukpolitics #ukpol

This dumb password rule is from Estheticon.

- At least 8 characters but limited to 20 characters at max
- At least 1 digit
- At least one letter (just a letter in general, no specific casing required)
- No special characters at all

https://dumbpasswordrules.com/sites/estheticon/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from MobileIron MDM.

You can't make this up - no dictionary words, no more than 2 repeating
characters, no alphabetic sequences, no whitespace, 3 character sets,
maximum of 32 characters.

https://dumbpasswordrules.com/sites/mobileiron-mdm/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from EON.

By the time I'd finished reading the rules I've forgotten all of them.

https://dumbpasswordrules.com/sites/eon/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from Waze.

After you request a password reset and you receive an email with instructions and link to reset your password, you are presented with this password reset form. Your password length is limited between 8 and 16 characters. Additionally the form breaks with an error if you use any special characters...

https://dumbpasswordrules.com/sites/waze/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

Breaking, new, by me: Iran-backed Hackers Claim Wiper Attack on Medtech Firm Stryker

A hacktivist group with links to Iran's intelligence agencies is claiming responsibility for a data-wiping attack against Stryker, a global medical technology company based in Michigan. News reports out of Ireland, Stryker's largest hub outside of the United States, said the company sent home more than 5,000 workers there today. Meanwhile, a voicemail message at Stryker's main U.S. headquarters says the company is currently experiencing a building emergency.

From the story:

"Wiper attacks usually involve malicious software designed to overwrite any existing data on infected devices. But a trusted source with knowledge of the attack who spoke on condition of anonymity told KrebsOnSecurity the perpetrators in this case appear to have used a Microsoft service called Microsoft Intune to issue a ‘remote wipe’ command against all connected devices."

"Intune is a cloud-based solution built for IT teams to enforce security and data compliance policies, and it provides a single, web-based administrative console to monitor and control devices regardless of location. The Intune connection is supported by this Reddit discussion on the Stryker outage, where several users who claimed to be Stryker employees said they were told to uninstall Intune urgently."

https://krebsonsecurity.com/2026/03/iran-backed-hackers-claim-wiper-attack-on-medtech-firm-stryker/

#stryker #handala #intune #wiper #cybersecurity

Alt...

A manifesto from the Handala hacking group, which security firms link to Iranian intelligence agencies. Stryker Corporation Hacked 2026-03-11 We announce to the world that, in retaliation for the brutal attack on the Minab school and in response to ongoing cyber assaults against the infrastructure of the Axis of Resistance, our major cyber operation has been executed with complete success. The Zionist-rooted corporation, Stryker, one of the key arms of the global Zionist lobby and a central ring in the ‘New Epstein’ chain, has been struck with an unprecedented blow. In this operation, over 200,000 systems, servers, and mobile devices have been wiped and 50 terabytes of critical data have been extracted. Stryker’s offices in 79 countries have been forced to shut down. All the acquired data is now in the hands of the free people of the world, ready to be used for the true advancement of humanity and the exposure of injustice and corruption. A clear warning to all Zionist leaders and their lobbies who hide behind concrete walls and closed windows: The era of the ‘Epstein’ rings and the demons of our time is over. ‘Nimrod of this era,’ even if you close your windows, we will build our nests everywhere. Get ready for the mosquito...

This dumb password rule is from Whitcoulls.

Your password must:
- be between 7 and 15 characters
- contain a capital letter
- have no spaces (shown only when you go to change it)

https://dumbpasswordrules.com/sites/whitcoulls/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from BOINC Bakerlab.

Passwords may only include ASCII characters, not even extended ASCII.

https://dumbpasswordrules.com/sites/boinc-bakerlab/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from Nintendo.

Password between 8-20 characters, at least two "categories" of characters, and cannot use the same character more than twice in a row. At least it supports MFA.

https://dumbpasswordrules.com/sites/nintendo/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from Alibaba.

- At least 2 uppercase letters
- Plus 2 lowercase letters
- Plus 2 numbers
- Plus 2 punctuation marks

Phew, too many rules, because why not, if [Ma thinks AI stands for Alibaba Intelligence](https://www.youtube.com/watch?v=f3lUEnMaiAU),
then password rules can be equally intelligent too.

Also, ...

https://dumbpasswordrules.com/sites/alibaba/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

been checking last few days #blighters who are kicked out trying to get at our #VOIP #PBX - they don't even seem to be wanting to use the #SIP #trunks for getting free #telephone calls for actually talking to people (even spam/coldcalls), but appear to be edgelords attempting to use them for their own private vendetta and DDOS some individual/business phone as INVITE attempts are all to the same USA number(s)

I'm assuming its not someone trying to call their *own* phone to find when someone *has* left a trunk open, as that would surely create a data trail authorities could pick up on?

#hacking #cybercrime #cybersecurity

This dumb password rule is from LCL.

You have to enter your 6-digit password using this Frenchy keypad.

https://dumbpasswordrules.com/sites/lcl/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from Omnivox.

Password length must be 8 to 20 characters long with lower case characters and numbers only.

https://dumbpasswordrules.com/sites/omnivox/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

Cyberattacks on government agencies and infrastructure — hardly a comprehensive list, but a sample listed in this article:
https://therecord.media/new-jersey-county-says-malware-attack-took-down-phones
h/t @patrickcmiller
https://infosec.exchange/@patrickcmiller/116196318958184049
#cybersecurity #cyberattack #NewJersey

This dumb password rule is from Deutsche Kreditbank AG (DKB).

Passwords for the online banking web frontend do not have a max length constraint, but using the same password to
log in to the official iOS DKB app requires the password to be no longer than 38 characters.

https://dumbpasswordrules.com/sites/deutsche-kreditbank-ag-dkb/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from KPMG Talent Community.

While stating otherwise, the site actually *accepts a backslash* in the password
and displays a forward slash as the example of the disallowed backslash
Password:
- Must be at least 8 characters long
- Must contain at least 1 number
- Must contain at least 1 letter
- Must contain at least 1 spec...

https://dumbpasswordrules.com/sites/kpmg-talent-community/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from Easybank (Austrian direct bank).

- At least 8 and at most 16 (!) characters
- **Must start with 5 digits (do we really want to know what's going on there?)**
- At least one uppercase and one lowercase letter
- (Some) special characters are permitted, most are not
- "Simple" patterns are prohibited
- PINs are case sensitive (at l...

https://dumbpasswordrules.com/sites/easybank-austrian-direct-bank/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

🆕 blog! “Book Review: The Electronic Criminals by Robert Farr (1975)”
★★★⯪☆

What can a fifty-year-old book teach us about cybersecurity? Written just as computing was beginning to enter the mainstream, The Electronic Criminals takes us into a terrifying new world of crime!

Fraud over Telex! Ransomware of physical tapes! Stealing passwords and…

👀 Read more: https://shkspr.mobi/blog/2026/03/book-review-the-electronic-criminals-by-robert-farr-1975/
⸻
#BookReview #CyberSecurity

This dumb password rule is from MarketWatch.

- Cannot be longer than 15 characters.
- Must contain one number.
- Cannot contain spaces, %, & or +.

https://dumbpasswordrules.com/sites/marketwatch/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

EU Chat Control drops mandatory encryption-breaking scans — huge privacy win after years of resistance! 🎉

But now pushes mandatory age verification across apps, risking anonymity while letting Big Tech "voluntarily" scan. Fight continues in trilogues. 🛡️

🔗 https://tuta.com/blog/chat-control-criticism

#TechNews #Privacy #Chat #Control #ChatControl #EU #Europe #Encryption #AgeVerification #Surveillance #DigitalRights #Resistance #Cybersecurity #Anonymity #BigTech

This dumb password rule is from Wells Fargo Identity Theft Protection.

Your password on an Identity Theft Protection service is limited to
between 8 and 20 characters. Your username is allowed to be longer than
your password.

https://dumbpasswordrules.com/sites/wells-fargo-identity-theft-protection/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from Taco Bell.

Password may include special characters, except for #.

https://dumbpasswordrules.com/sites/taco-bell/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

This dumb password rule is from Coppell, TX - Water Utility.

Local Utility with a password restriction of 30 characters. Better than some for sure, but still dumb.

https://dumbpasswordrules.com/sites/coppell-tx-water-utility/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

I'm pleased to report that I've just submitted the final capstone paper for my master's degree in cybersecurity!

#cybersecurity #infosec #freebsd #bastillebsd #learning #education